Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Repository Problems

These problems occurred while renovating this repository. View logs.

• ⚠️ WARN: Package lookup failures

Rate-Limited

The following updates are currently rate-limited. To force their creation now, click on a checkbox below.

• chore(deps): update github actions (aquasecurity/trivy-action, bcgov/action-crunchy, bcgov/action-get-pr, bcgov/action-oc-runner, bcgov/action-test-and-analyse, grafana/run-k6-action, zaproxy/action-full-scan)
• chore(deps): update infrastructure updates (caddy, node)
• fix(deps): update node dependencies (@bcgov/design-system-react-components, @swc/cli, eslint-plugin-tsdoc)
• chore(deps): update dependency @faker-js/faker to v10
• chore(deps): update dependency jsdom to v29
• chore(deps): update dependency typescript to v6
• chore(deps): update github actions (major) (actions/checkout, actions/setup-node, actions/upload-artifact, bcgov/action-builder-ghcr, bcgov/action-crunchy, bcgov/action-test-and-analyse, bcgov/quickstart-openshift-helpers, node, shrink/actions-docker-registry-tag)
• chore(deps): update infrastructure updates (major) (flyway/flyway, node, postgis/postgis, schemaspy/schemaspy)
• chore(deps): update linters (major) (@typescript-eslint/eslint-plugin, @typescript-eslint/parser, eslint, eslint-config-love, eslint-config-prettier, eslint-import-resolver-typescript, eslint-plugin-cypress, eslint-plugin-n, eslint-plugin-promise, eslint-plugin-react-hooks)
• chore(deps): update vitest monorepo to v4 (major) (@vitest/coverage-v8, @vitest/ui, vitest)
• fix(deps): update definitelytyped (major) (@types/node, @types/supertest)
• fix(deps): update dependency @vitejs/plugin-react to v6
• fix(deps): update dependency vite-tsconfig-paths to v6
• fix(deps): update prisma monorepo to v7 (major) (@prisma/client, prisma)
• chore(deps): lock file maintenance
• 🔐 Create all rate-limited PRs at once 🔐

---

Warning

Renovate failed to look up the following dependencies: Could not determine new digest for update (github-tags package aquasecurity/trivy-action).

Files affected: .github/workflows/analysis.yml

---

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

• chore(deps): update dependency @nestjs/core to v11.1.18 [security]
• chore(deps): update dependency js-yaml to v4.1.1 [security]
• chore(deps): update dependency axios to v1.15.0 [security]
• chore(deps): update dependency lodash to v4.18.1 [security]
• chore(deps): update dependency playwright to v1.55.1 [security]
• chore(deps): update dependency vite to v6.4.2 [security]
• fix(deps): update dependency dotenv to v17
• Click on this checkbox to rebase all open PRs at once

Detected Dependencies

docker-compose (1)

docker-compose.yml (3)

• postgis/postgis 16-3.4 → [Updates: 17-3.4]
• flyway/flyway 10-alpine → [Updates: 11-alpine]
• schemaspy/schemaspy 6.2.4 → [Updates: 7.0.2]

dockerfile (3)

backend/Dockerfile (2)

• node 22.16.0-slim → [Updates: 22.22.2-slim, 24.14.1-slim]
• node 22.16.0-slim → [Updates: 22.22.2-slim, 24.14.1-slim]

frontend/Dockerfile (2)

• node 22-slim → [Updates: 24-slim]
• caddy 2.10.0-alpine → [Updates: 2.11.1-alpine]

migrations/Dockerfile (1)

• flyway/flyway 11-alpine → [Updates: 12-alpine]

github-actions (10)

.github/workflows/.deployer.yml (6)

• bcgov/action-crunchy v1.2.1@ac46670c974c2238fffb635eee7bbd27735c25bc → [Updates: v1.2.6, v2.0.0]
• bcgov/action-get-pr v0.0.1@21f9351425cd55a98e869ee28919a512aa30647d → [Updates: v0.1.1]
• bcgov/action-oc-runner v1.2.2@12997e908fba505079d1aab6f694a17fe15e9b28 → [Updates: v1.4.1]
• actions/checkout v4 → [Updates: v6]
• bcgov/action-oc-runner v1.2.2@12997e908fba505079d1aab6f694a17fe15e9b28 → [Updates: v1.4.1]
• ubuntu 24.04

.github/workflows/.tests.yml (12)

• actions/checkout v4 → [Updates: v6]
• actions/cache v4 → [Updates: v5]
• actions/checkout v4 → [Updates: v6]
• actions/setup-node v4 → [Updates: v6]
• actions/upload-artifact v4 → [Updates: v7]
• actions/checkout v4 → [Updates: v6]
• grafana/setup-k6-action v1.1.0@ffe7d7290dfa715e48c2ccc924d068444c94bde2
• grafana/run-k6-action v1.2.0@c6b79182b9b666aa4f630f4a6be9158ead62536e → [Updates: v1.3.1]
• ubuntu 24.04
• ubuntu 24.04
• node 20 → [Updates: 24]
• ubuntu 24.04

.github/workflows/analysis.yml (9)

• bcgov/action-test-and-analyse v1.3.0@e2ba34132662c1638dbde806064eb7004b3761c3 → [Updates: v1.6.0, v2.0.0]
• bcgov/action-test-and-analyse v1.3.0@e2ba34132662c1638dbde806064eb7004b3761c3 → [Updates: v1.6.0, v2.0.0]
• actions/checkout v4 → [Updates: v6]
• aquasecurity/trivy-action 0.31.0@76071ef0d7ec797419534a183b498b4d6366cf37 → [Updates: 0.35.0]
• github/codeql-action v3 → [Updates: v4]
• ubuntu 24.04
• ubuntu 24.04
• ubuntu 24.04
• ubuntu 24.04

.github/workflows/demo.yml (2)

• bcgov/action-oc-runner v1.2.2@12997e908fba505079d1aab6f694a17fe15e9b28 → [Updates: v1.4.1]
• ubuntu 24.04

.github/workflows/merge.yml (2)

• shrink/actions-docker-registry-tag v4@f04afd0559f66b288586792eb150f45136a927fa → [Updates: v5]
• ubuntu 24.04

.github/workflows/notifications.yml (5)

• simbo/msteams-message-card-action v1.4.3@d87ad6c3908b72f4fd94b55d937d05395c7300dc
• simbo/msteams-message-card-action v1.4.3@d87ad6c3908b72f4fd94b55d937d05395c7300dc
• ubuntu 24.04
• ubuntu 24.04
• ubuntu 24.04

.github/workflows/pr-close.yml (3)

• bcgov/quickstart-openshift-helpers v0.9.0@0b8121a528aaa05ef8def2f79be9081691dfe98a → [Updates: v1.1.0]
• bcgov/action-crunchy v1.2.1@ac46670c974c2238fffb635eee7bbd27735c25bc → [Updates: v1.2.6, v2.0.0]
• ubuntu 24.04

.github/workflows/pr-open.yml (3)

• bcgov/action-builder-ghcr v3.0.1@ec30e4ce1ac3c25c93ec26cf370ecba028dc478e → [Updates: v4.2.1]
• ubuntu 24.04
• ubuntu 24.04

.github/workflows/pr-validate.yml (2)

• bcgov/quickstart-openshift-helpers v0.9.0@0b8121a528aaa05ef8def2f79be9081691dfe98a → [Updates: v1.1.0]
• ubuntu 24.04

.github/workflows/scheduled.yml (5)

• bcgov/action-oc-runner v1.2.2@12997e908fba505079d1aab6f694a17fe15e9b28 → [Updates: v1.4.1]
• bcgov/quickstart-openshift-helpers v0.9.0@0b8121a528aaa05ef8def2f79be9081691dfe98a → [Updates: v1.1.0]
• zaproxy/action-full-scan v0.12.0@75ee1686750ab1511a73b26b77a2aedd295053ed → [Updates: v0.13.0]
• ubuntu 24.04
• ubuntu 24.04

npm (3)

backend/package.json (49)

• @nestjs/cli ^11.0.2
• @nestjs/common ^11.0.6
• @nestjs/config ^4.0.0
• @nestjs/core ^11.0.6 → [Updates: ^11.0.6]
• @nestjs/platform-express ^11.0.6
• @nestjs/schematics ^11.0.0
• @nestjs/swagger ^11.0.3
• @nestjs/terminus ^11.0.0
• @nestjs/testing ^11.0.6
• @prisma/client ^6.3.0 → [Updates: ^7.0.0]
• prisma ^6.2.1 → [Updates: ^7.0.0]
• dotenv ^16.4.7 → [Updates: ^17.0.0]
• express-prom-bundle ^8.0.0
• helmet ^8.0.0
• nest-winston ^1.10.1
• pg ^8.13.1
• prom-client ^15.1.3
• reflect-metadata ^0.2.2
• rimraf ^6.0.1
• swagger-ui-express ^5.0.1
• winston ^3.17.0
• @swc/cli ^0.7.0 → [Updates: ^0.8.0]
• @swc/core ^1.10.12
• @types/express ^5.0.0
• @types/node ^22.12.0 → [Updates: ^24.0.0]
• @types/supertest ^6.0.2 → [Updates: ^7.0.0]
• @typescript-eslint/eslint-plugin ^7.0.0 → [Updates: ^8.0.0]
• @typescript-eslint/parser ^7.0.0 → [Updates: ^8.0.0]
• @vitest/coverage-v8 ^3.0.2 → [Updates: ^4.0.0]
• eslint ^8.57.0 → [Updates: ^10.0.0]
• eslint-config-airbnb-base ^15.0.0
• eslint-config-prettier ^9.0.0 → [Updates: ^10.0.0]
• eslint-config-standard ^17.0.0
• eslint-plugin-import ^2.27.5
• eslint-plugin-n ^16.6.2 → [Updates: ^17.0.0]
• eslint-plugin-prettier ^5.0.0
• eslint-plugin-promise ^6.1.1 → [Updates: ^7.0.0]
• istanbul-badges-readme ^1.9.0
• lint-staged ^16.0.0
• prettier ^3.4.2
• source-map-support ^0.5.21
• supertest ^7.0.0
• ts-loader ^9.5.2
• ts-node ^10.9.2
• tsconfig-paths ^4.2.0
• typescript ^5.2.2 → [Updates: ^6.0.0]
• unplugin-swc ^1.5.1
• vitest ^3.0.2 → [Updates: ^4.0.0]
• reflect-metadata ^0.2.2

frontend/package.json (49)

• @bcgov/bc-sans ^2.1.0
• @bcgov/design-system-react-components ^0.5.0 → [Updates: ^0.7.0]
• @popperjs/core ^2.11.8
• @tanstack/react-router ^1.114.12
• @tanstack/router-plugin ^1.114.27
• @types/node ^22.13.11 → [Updates: ^24.0.0]
• @vitejs/plugin-react ^4.3.4 → [Updates: ^6.0.0]
• axios ^1.7.7 → [Updates: ^1.7.7]
• bootstrap ^5.3.3
• bootstrap-icons ^1.11.3
• react ^19.0.0
• react-bootstrap ^2.10.9
• react-dom ^19.0.0
• sass-embedded ^1.86.0
• vite ^6.2.3 → [Updates: ^6.2.3]
• vite-tsconfig-paths ^5.1.4 → [Updates: ^6.0.0]
• @faker-js/faker ^9.0.0 → [Updates: ^10.0.0]
• @playwright/test ^1.51.0
• @tanstack/react-router-devtools ^1.114.13
• @testing-library/jest-dom ^6.0.0
• @testing-library/react ^16.0.0
• @testing-library/user-event ^14.4.3
• @types/react ^19.0.10
• @types/react-dom ^19.0.4
• @vitest/coverage-v8 ^3.0.8 → [Updates: ^4.0.0]
• @vitest/ui ^3.0.8 → [Updates: ^4.0.0]
• eslint ^9.2.2 → [Updates: ^10.0.0]
• eslint-config-love ^119.0.0 → [Updates: ^152.0.0]
• eslint-config-prettier ^10.1.1
• eslint-import-resolver-alias ^1.1.2
• eslint-import-resolver-typescript ^3.8.3 → [Updates: ^4.0.0]
• eslint-plugin-cypress ^4.2.0 → [Updates: ^6.0.0]
• eslint-plugin-html ^8.1.2
• eslint-plugin-import ^2.31.0
• eslint-plugin-prettier ^5.2.3
• eslint-plugin-promise ^7.2.1
• eslint-plugin-react ^7.37.4
• eslint-plugin-react-hooks ^5.2.0 → [Updates: ^7.0.0]
• eslint-plugin-tsdoc ^0.4.0 → [Updates: ^0.5.0]
• eslint-plugin-yaml ^1.0.3
• history ^5.3.0
• jsdom ^26.0.0 → [Updates: ^29.0.0]
• msw ^2.7.3
• playwright ^1.51.0 → [Updates: ^1.51.0]
• prettier ^3.5.3
• sass ^1.85.1
• typescript ^5.7.3 → [Updates: ^6.0.0]
• vitest ^3.0.8 → [Updates: ^4.0.0]
• @types/react ^19.0.10

tests/integration/package.json (4)

• axios ^1.6.8 → [Updates: ^1.6.8]
• dotenv ^16.3.1 → [Updates: ^17.0.0]
• js-yaml ^4.1.0 → [Updates: ^4.1.0]
• lodash ^4.17.21 → [Updates: ^4.17.21]

renovate-config-presets (1)

renovate.json

---

• Check this box to trigger a request for Renovate to run again on this repository